Microsoft's lax security blasted by investigators after serious breach

Cascade of failings allowed Chinese hackers to access government emails, says US review board

John Leonard
clock • 3 min read
Microsoft's lax security blasted by investigators after serious breach

A damning report by the US Cyber Safety Review Board (CSRB), has revealed a "cascade of errors and security failures" at Microsoft which allowed a major breach of its systems last year.

The attack, which took place in summer 2023, saw China-linked threat actor Storm-0558 access the Microsoft Exchange Online mailboxes of 22 organisations and more than 500 individuals, including sev...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Apple releases eight OpenELM AI small language models for on-device use

Mobile Software

Apple releases eight OpenELM AI small language models for on-device use

Proof-of-concept AI models from Apple come just days after the release of Microsoft’s Phi-3

clock 29 April 2024 • 2 min read
Microsoft, Google and Snap report strong quarterly results, IBM and Intel less so

Finance and Reporting

Microsoft, Google and Snap report strong quarterly results, IBM and Intel less so

Microsoft and Google see AI investments bearing fruit

clock 26 April 2024 • 4 min read
Big Tech's AI spending spree worries investors

Artificial Intelligence

Big Tech's AI spending spree worries investors

Zuckerberg says building a leading AI system will take several years and require significant investment

clock 26 April 2024 • 3 min read
John Leonard
Author spotlight

John Leonard

View profile
More from John Leonard

Microsoft, Google and Snap report strong quarterly results, IBM and Intel less so

How a council consolidated security tools and saved 40%

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

Get the newsletter

More on Security

Interview: Zerto, Security Excellence Awards finalist
Security

Interview: Zerto, Security Excellence Awards finalist

'We laser focus on disaster recovery, ransomware resilience and multi-cloud mobility'

Computing Staff
clock 29 April 2024 • 4 min read
BlueVoyant chooses Leeds for new Security Operations Centre
Security

BlueVoyant chooses Leeds for new Security Operations Centre

The new SOC will boost customer compliance with regulations like NIS2 and DORA

Penny Horwood
Penny Horwood
clock 25 April 2024 • 4 min read
Met police disrupt LabHost scam-as-a-service website
Security

Met police disrupt LabHost scam-as-a-service website

Dozens arrested globally and thousands sent warnings

Penny Horwood
Penny Horwood
clock 18 April 2024 • 3 min read